firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 18:15:03 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jzgcqmwh7WWptge4NjUTO3YwFNzEuSCrsqNH3CWXh8kmO0XU16CmgQ==
Age: 84
freerobuxhacks2018julycalendar.blogspot.co.id/?m=1
302 Moved Temporarily 198 B URL HTTP/1.1 freerobuxhacks2018julycalendar.blogspot.co.id/?m=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 2ffd562a93298c4f5d385fd41f2717bc
8d6882d621484a68a8a63aabb488955fbeda5006
94e07dfe5d824bc95a30150fb0ced293d721ab019156cc8042c2d92a1b18f757
Analyzer Verdict Alert fortinet Phishing
GET /?m=1 HTTP/1.1
Host: freerobuxhacks2018julycalendar.blogspot.co.id
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://freerobuxhacks2018julycalendar.blogspot.com/?m=1
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 25 Sep 2022 18:16:27 GMT
Expires: Sun, 25 Sep 2022 18:16:27 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 198
Server: GSE
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15875
Expires: Sun, 25 Sep 2022 22:41:02 GMT
Date: Sun, 25 Sep 2022 18:16:27 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6nklkuS7EcN9eABkWfkjxX1xvqscMRfRa4Ab3UqeHYsWsndE0LLzWQ==
age: 49273
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 18:16:27 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
freerobuxhacks2018julycalendar.blogspot.com/?m=1
301 Moved Permanently 198 B URL HTTP/1.1 freerobuxhacks2018julycalendar.blogspot.com/?m=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 9a921263673c51857747856afabe3a82
0dbd3d637f1e45590e28b6eb77ff34c81c38368a
60925dd85875896f91758b5b08abab0c9f4d59b385832f1a3b38a21b6e0c5050
GET /?m=1 HTTP/1.1
Host: freerobuxhacks2018julycalendar.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://freerobuxhacks2018julycalendar.blogspot.com/?m=1
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 25 Sep 2022 18:16:27 GMT
Expires: Sun, 25 Sep 2022 18:16:27 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 198
Server: GSE
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash dde08ad6d0d33c288ad70cce74175fbb
de2d638241098268be6c8fc01b748fde38f1dd96
164fa18665323f6274da69ec244a59054ac277e17c5792a04eb2907758e0e586
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 25 Sep 2022 18:04:17 GMT
Expires: Sun, 25 Sep 2022 18:09:45 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: c-50Dqkn30l8qI2LHkuClhOtp7_uY-OkczXzmZwHcmxvV-AM6qfeUg==
Age: 731
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5081dc1508d43c1e614957b7a94bab1a
4eecce92d0ed0a867a5c6545238b8ec255aded8b
17aeec36af397aa62a479b610a5dd05987c22cbb58d26d4e79b3e403af5cf9b1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
freerobuxhacks2018julycalendar.blogspot.com/?m=1
200 OK 56 kB URL HTTP/2 freerobuxhacks2018julycalendar.blogspot.com/?m=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (32023)
Hash 545e255f937011207fce9db449dacf0d
0494a823d23dfcef04e0921b91aa1fa360ab4b3b
604dc225366b6aa25698a9accfbf81b83c248dd4299d692097e3bdc56165a027
GET /?m=1 HTTP/1.1
Host: freerobuxhacks2018julycalendar.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 25 Sep 2022 18:16:28 GMT
date: Sun, 25 Sep 2022 18:16:28 GMT
cache-control: private, max-age=0
last-modified: Sun, 25 Sep 2022 12:11:22 GMT
etag: W/"20969ef468fd8dc642aa64a94daf55b0d3140afaf16d6e5d75008f3a448b8a51"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 56018
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 64b39684d4c80b63458f11ed8b8c5d17
6abc0bd0c0318d9e7a362eb3949bfe81a48c6343
c307464d222c4a9e1206586f0ebd7155de49baa84bbce8c8d0d4ce5e122cb076
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 527
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Last-Modified: Sun, 25 Sep 2022 18:07:41 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 279 B IP
Hash 650b6e71248092b05b7f35e8703da4fb
a675c71ea7c50c6a3576eb9626630b0445016d32
122a0ec921f9b9a6b845d4f75df0a4d950f2ce3c34a79cecc67d80962255c1ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3431
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Last-Modified: Sun, 25 Sep 2022 17:19:17 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 64b39684d4c80b63458f11ed8b8c5d17
6abc0bd0c0318d9e7a362eb3949bfe81a48c6343
c307464d222c4a9e1206586f0ebd7155de49baa84bbce8c8d0d4ce5e122cb076
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2vmbj4MOrwXG4FIHbFO3BvnBhUiusYUvg4xcfDEdlHH-xS5kaiOGd0gdncbCzRxn86dl0aNUY6-C2AavJZCPIVjLzgavtWckfEMu0Gosd1Gxc
200 OK 5.9 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2vmbj4MOrwXG4FIHbFO3BvnBhUiusYUvg4xcfDEdlHH-xS5kaiOGd0gdncbCzRxn86dl0aNUY6-C2AavJZCPIVjLzgavtWckfEMu0Gosd1Gxc
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 98b17ddf7947f4071e04b3f2c4d54ce7
941db2bab23fbb36e3a2ca92f47da8929f3264d6
8a8e19a0308bc8fb1b06e2d4c8e6666574052a86e6dcf36b29b1da2aaab22399
GET /blogger_img_proxy/ANbyha2vmbj4MOrwXG4FIHbFO3BvnBhUiusYUvg4xcfDEdlHH-xS5kaiOGd0gdncbCzRxn86dl0aNUY6-C2AavJZCPIVjLzgavtWckfEMu0Gosd1Gxc HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freerobuxhacks2018julycalendar.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Mon, 26 Sep 2022 18:16:28 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 25 Sep 2022 18:16:28 GMT
server: fife
content-length: 5901
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1Q_Mza_uvmdkPpKdvze8bWJBVYComaTVohEo5EawMIKL1CLfQuYGx2xAHb6Kw2_VZuGBetG9u_kUSNrfvp7J42RG3_Fw1MOSF3CleyQ9o9d3k
200 OK 3.4 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1Q_Mza_uvmdkPpKdvze8bWJBVYComaTVohEo5EawMIKL1CLfQuYGx2xAHb6Kw2_VZuGBetG9u_kUSNrfvp7J42RG3_Fw1MOSF3CleyQ9o9d3k
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 576226b2ffb31b26a6d9b5c98cc785e3
f8b0c7c02fbfd30fa5afac6ec551606b1fef4772
2ca288950f9851685b6eba41442694b729a8f8dcec364a8891f625ec97bf7ff3
GET /blogger_img_proxy/ANbyha1Q_Mza_uvmdkPpKdvze8bWJBVYComaTVohEo5EawMIKL1CLfQuYGx2xAHb6Kw2_VZuGBetG9u_kUSNrfvp7J42RG3_Fw1MOSF3CleyQ9o9d3k HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freerobuxhacks2018julycalendar.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Mon, 26 Sep 2022 18:16:28 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 25 Sep 2022 18:16:28 GMT
server: fife
content-length: 3444
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 64b39684d4c80b63458f11ed8b8c5d17
6abc0bd0c0318d9e7a362eb3949bfe81a48c6343
c307464d222c4a9e1206586f0ebd7155de49baa84bbce8c8d0d4ce5e122cb076
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0H-cvBmKqgIy6kguY8AxJqRkOuXvrqdrVRlOOuyQrIaLM7Ys8x6-ApV_8uXG_8oS8owvxpQxn7eO7vey3Aqc7DXt84mcWixdHvg6DrWmSW2g
404 Not Found 1.2 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0H-cvBmKqgIy6kguY8AxJqRkOuXvrqdrVRlOOuyQrIaLM7Ys8x6-ApV_8uXG_8oS8owvxpQxn7eO7vey3Aqc7DXt84mcWixdHvg6DrWmSW2g
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 9fe85dcb3fe48e26d43227a130d47e6a
918db738002dda86a37aca5f2bece573f89d8084
57eb79ec23f95554cfee51062e26a0e62c8b095b030bf7aa4068894370e1052e
GET /blogger_img_proxy/ANbyha0H-cvBmKqgIy6kguY8AxJqRkOuXvrqdrVRlOOuyQrIaLM7Ys8x6-ApV_8uXG_8oS8owvxpQxn7eO7vey3Aqc7DXt84mcWixdHvg6DrWmSW2g HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freerobuxhacks2018julycalendar.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/jpeg
x-content-type-options: nosniff
date: Sun, 25 Sep 2022 18:16:28 GMT
server: fife
content-length: 1187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1cff4f56be1b217fd676fff4644d9673
5ba2a68749b8a9a9d8a3863b18e8f896400a7660
8984cd65d1108783e8a05574eafe5471cc98f807e314ef009d104b9739413946
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2KtO-ZDctb_3JWCsYX0W_ydiQpbj1lePOLviFdmwhUpX2NHTpjbAHZsmm9gNlF-clIDv1jkOHXSRXzrQLTokt-QXPPlns5a6y0fIIbK7tMNnw
404 Not Found 1.2 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2KtO-ZDctb_3JWCsYX0W_ydiQpbj1lePOLviFdmwhUpX2NHTpjbAHZsmm9gNlF-clIDv1jkOHXSRXzrQLTokt-QXPPlns5a6y0fIIbK7tMNnw
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 9fe85dcb3fe48e26d43227a130d47e6a
918db738002dda86a37aca5f2bece573f89d8084
57eb79ec23f95554cfee51062e26a0e62c8b095b030bf7aa4068894370e1052e
GET /blogger_img_proxy/ANbyha2KtO-ZDctb_3JWCsYX0W_ydiQpbj1lePOLviFdmwhUpX2NHTpjbAHZsmm9gNlF-clIDv1jkOHXSRXzrQLTokt-QXPPlns5a6y0fIIbK7tMNnw HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freerobuxhacks2018julycalendar.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/jpeg
x-content-type-options: nosniff
date: Sun, 25 Sep 2022 18:16:28 GMT
server: fife
content-length: 1187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 650b6e71248092b05b7f35e8703da4fb
a675c71ea7c50c6a3576eb9626630b0445016d32
122a0ec921f9b9a6b845d4f75df0a4d950f2ce3c34a79cecc67d80962255c1ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3431
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Last-Modified: Sun, 25 Sep 2022 17:19:17 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
www.blogger.com/static/v1/widgets/1416043673-widgets.js
200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1416043673-widgets.js
IP
File type ASCII text, with very long lines (2221)
Hash c6aef9cbd2abf926a23970b70f8a24c2
78972b4f41a7d2580c383da41e3a472c4cfc647a
111111066b8f3fddcd24cedce8c4e8b93a1d9e9b8e3f5f2959172da5adda14b6
GET /static/v1/widgets/1416043673-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freerobuxhacks2018julycalendar.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56913
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 04:10:30 GMT
expires: Mon, 25 Sep 2023 04:10:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 21 Sep 2022 02:52:11 GMT
content-type: text/javascript
age: 50758
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 64b39684d4c80b63458f11ed8b8c5d17
6abc0bd0c0318d9e7a362eb3949bfe81a48c6343
c307464d222c4a9e1206586f0ebd7155de49baa84bbce8c8d0d4ce5e122cb076
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 8c5ef2f4f663344f1632b3eb8d0649c3
6c2b58649ef2cf95baa7738144b39ed986580c95
26b6489dab75fc0e12f7cf1249ede296389ab38eb034d67daeb3e9750dec81d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9kbvfY3zUIjPrev+n2oZ4Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7rH14Euwm3nTEsJriJz6MBmQzz8=
ocsp.pki.goog/s/gts1p5/1EpVtZKsCXY
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/1EpVtZKsCXY
IP
Hash 6e5577f6d5d5f592b59c4a00beaaa2c3
6f441641619ac55ae79d38b21ec9eee0288fec1c
74d3098f6eb279ff7cdbc84fafdd7b6bcafb8b1c1072db50459b399e505c9709
POST /s/gts1p5/1EpVtZKsCXY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:28 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.robuxtip.org/images/gamebaglogo.png
200 OK 3.3 kB URL HTTP/2 play.robuxtip.org/images/gamebaglogo.png
IP
File type PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Hash e84f0caa809a15b2aaa9cb93bbe6669a
22a330ad580aaa6b2232307a87b981adc7fbf38f
1f98c982fd0c9b5e6af138a4cb160f509bda9fcc7fa0a9463fa6cf11513c151f
GET /images/gamebaglogo.png HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: image/png
content-length: 3340
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: "5d9ca488-d0c"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=18H6Chn6p4tgIoNfTpVQQV8LV1VM%2B6gj9hZ0ftWerBYoF%2FIKMfE%2Fq9Ipj5lsdF3%2B5tfbJWcAWxHMMZyGSl09Kjb8aaacyMRXF1NATx6Dw6QQkMFY%2B6xdOxP%2FNfNFE02t%2BEv1DA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d6d930afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/ft-1.png
200 OK 3.3 kB URL HTTP/2 play.robuxtip.org/images/ft-1.png
IP
File type PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Hash e84f0caa809a15b2aaa9cb93bbe6669a
22a330ad580aaa6b2232307a87b981adc7fbf38f
1f98c982fd0c9b5e6af138a4cb160f509bda9fcc7fa0a9463fa6cf11513c151f
GET /images/ft-1.png HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: image/png
content-length: 3340
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: "5d9ca488-d0c"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9FS5pNrG0kJm8s3B0Uhxjrj%2FMZ5nadgsJoNafzZQGd7%2BuT2TLoB5vUTUrtqIlALH%2BDsOcl16HbnLDhYsvr4%2FbD046hwIptA3MdcRMlcz1uQNwmmSeAlsaFt%2FHPkk0IDHORtTLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d6d9c0afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/header.png
200 OK 131 kB URL HTTP/2 play.robuxtip.org/images/header.png
IP
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 131 kB (131285 bytes)
Hash 35e93538f31d67876a2cb38bf94279d8
49bf97732e9bffb5371ad60d024901b09d83651b
95c1de9315834de2ff3608a2dc048a6aedc273e665f9b54eb956523a81fc91df
GET /images/header.png HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: image/png
content-length: 131285
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: "5d9ca488-200d5"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kX4bdAW7AcxTZ%2ForPehybMpjMqwJ3EF3kP%2BubuSXqOJJShZMkt4QrDIa2%2BrJnpH%2B5Zoq2wCTR8QJtUz%2BeeX%2FcOkxPM0fuCZaeC0dNTsBlUL7psrtuMtlTQWMy3aRCKe8%2BK5rIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d6d960afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css
200 OK 1.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css
IP
File type ASCII text, with very long lines (3201), with no line terminators
Hash 8e09ceb5490863a66cd2e83ca3d7e524
35e3d074516ec70c508d748f7ae01827bc0c28ba
cccbb374fd4cb6dcbac9df64456b49cb11530e7bafdac6c6c7e67ff2ed350db9
GET /ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: text/css; charset=utf-8
content-length: 1541
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-c81"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9571159
expires: Fri, 15 Sep 2023 18:16:29 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2NfPcJ6JhIYajFuUP9J2NdvGRUTZGhfyPMGA63J8VpSDc87FyEqN6dA7Ulbhps4%2Fj3F6z%2F%2FSrL3XCCqnOd7naTjmn8c9RwWEuthdockCReWU8mE9iRy7GtCm%2FYPNDAiiKrkm5Yk0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7505c04d9d670b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash a0036bd311037c8d341007ac84536f14
539ac83cb40de9bc1dd18203939ae4b887f77e06
d85d38abd837e4370efef68bb853a3569333055a6a26aa5a87d7ad029b35c86e
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 18:16:29 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "1B20286FAB4155709E13C2A2E14A357942983441"
Expires: Mon, 26 Sep 2022 05:00:00 GMT
Last-Modified: Sun, 25 Sep 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1306
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7505c04dceb9b512-OSL
ocsp.pki.goog/s/gts1p5/1EpVtZKsCXY
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/1EpVtZKsCXY
IP
Hash 6e5577f6d5d5f592b59c4a00beaaa2c3
6f441641619ac55ae79d38b21ec9eee0288fec1c
74d3098f6eb279ff7cdbc84fafdd7b6bcafb8b1c1072db50459b399e505c9709
POST /s/gts1p5/1EpVtZKsCXY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:29 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v14/cJZKeOuBrn4kERxqtaUH3aCWcynf_cDxXwCLxiixG1c.ttf
200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v14/cJZKeOuBrn4kERxqtaUH3aCWcynf_cDxXwCLxiixG1c.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, type 1 string, Open SansRegular1.10;1ASC;OpenSans-RegularOpen Sans RegularVersion 1.10OpenSans-Regularhttp://ww\012- data
Hash 8c20320e2a77d984348f9e9aa7296b9d
0939a63b6a9982ab64f044dfc3a21dac2bca0499
0be48b762bdf588db02112492dfadcb3a098fad3ac5aa2ccc80568b799462c52
GET /s/opensans/v14/cJZKeOuBrn4kERxqtaUH3aCWcynf_cDxXwCLxiixG1c.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://play.robuxtip.org
Connection: keep-alive
Referer: https://play.robuxtip.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17789
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 07:07:48 GMT
expires: Thu, 21 Sep 2023 07:07:48 GMT
cache-control: public, max-age=31536000
age: 385721
last-modified: Wed, 14 Jun 2017 16:46:31 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
play.robuxtip.org/images/sweetalert2.min.js
200 OK 7.1 kB URL HTTP/2 play.robuxtip.org/images/sweetalert2.min.js
IP
File type ASCII text, with very long lines (20305), with no line terminators
Hash 6c3bba4c358afcc3e34e2370032f3e4e
fdd751b6fbb5852b521ad17aa9eff4f0ca62b175
d13e0f10422736c5dc57188b309cf0998235b6818221d4fe33041e5471057394
Analyzer Verdict Alert fortinet Phishing
GET /images/sweetalert2.min.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-4f51"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4fA8ax8OXCdZmqOt1me7KZ0JB7VGO1JEPWaHFMF19nNt2d8YIHWQpNLJJeinMRcg6lZXGMRl%2FIRz%2FdT%2BPpuIuVaSHuluQTe%2FbLzJlNFm5F41e%2FX0ENl0d0NPsRuvzXuWojE9ZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d7daa0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTYnF5uFdDttMLvmWuJdhhgs.ttf
200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTYnF5uFdDttMLvmWuJdhhgs.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, type 1 string, Open Sans LightRegular1.10;1ASC;OpenSans-LightVersion 1.10OpenSans-Lighthttp://www.apache.org/li\012- data
Hash a69c5fa643b7208c4922909701e399ac
0560e8f641340a70d9c36b3d4106e42ac395f829
0a8b75177ccda56113a7a1bb9214c38276257846f9323226f74831f74ffc721f
GET /s/opensans/v14/DXI1ORHCpsQm3Vp6mXoaTYnF5uFdDttMLvmWuJdhhgs.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://play.robuxtip.org
Connection: keep-alive
Referer: https://play.robuxtip.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18391
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 11:58:11 GMT
expires: Thu, 21 Sep 2023 11:58:11 GMT
cache-control: public, max-age=31536000
age: 368298
last-modified: Wed, 14 Jun 2017 16:45:42 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v14/k3k702ZOKiLJc3WVjuplzInF5uFdDttMLvmWuJdhhgs.ttf
200 OK 19 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v14/k3k702ZOKiLJc3WVjuplzInF5uFdDttMLvmWuJdhhgs.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, type 1 string, Open SansBold1.10;1ASC;OpenSans-BoldOpen Sans BoldVersion 1.10OpenSans-Boldhttp://www.apache.org\012- data
Hash 5498784000b038638befe230ea392271
efef80115bdabd927501563197827a7ae837a19f
5848ca5f4af491c37907f2e4cb0e240166572edc90615a96d4702f2dce34800b
GET /s/opensans/v14/k3k702ZOKiLJc3WVjuplzInF5uFdDttMLvmWuJdhhgs.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://play.robuxtip.org
Connection: keep-alive
Referer: https://play.robuxtip.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 11:43:27 GMT
expires: Thu, 21 Sep 2023 11:43:27 GMT
cache-control: public, max-age=31536000
age: 369182
last-modified: Wed, 14 Jun 2017 16:46:24 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
play.robuxtip.org/images/font-awesome.min.css
200 OK 6.7 kB URL HTTP/2 play.robuxtip.org/images/font-awesome.min.css
IP
File type ASCII text, with very long lines (27546)
Hash c03cedc8eb21073cac4a4a928963d7e0
0cbcf8303a99468bfcfda35c0fb37cb5b53ec366
89bbbc2fcbaa4ac646ca7e169b1b175a723a653d488d8568d79cecefc173f883
GET /images/font-awesome.min.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: text/css
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-6c3d"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DILhOeQMxpZKPFFKjDX2FGDmR4u1LIEc8Use%2FXF6DvVFBEqE%2FUukjsrG%2BUqoQmq%2BRfrIXXnxwQr6gSp7kux34MfOJxNihoSRueZrwhVtT%2ByitpbA9guIEP5oYqqzlDL42SY5Rw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d4d6f0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f038194067eb0a255d9b9a1a70503e3b
63f77e7ab6971b42bc28dc3aed1a783bc2993efe
299e978fbedd998983ca109f8f7998bce61d822803925aefa78e91d7d9987f73
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "299E978FBEDD998983CA109F8F7998BCE61D822803925AEFA78E91D7D9987F73"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17760
Expires: Sun, 25 Sep 2022 23:12:29 GMT
Date: Sun, 25 Sep 2022 18:16:29 GMT
Connection: keep-alive
s10.histats.com/js15_as.js
200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:11:03 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 975046730
content-type: text/javascript
content-encoding: br
x-cdn-pop: rbx1
x-cdn-pop-ip: 51.254.41.128/25
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
s4.histats.com/stats/0.php?4275781&@f16&@g0&@h2&@i1&@j1664129787916&@k129154&@l2&@mRoblox%20Robux%20Generator%202022&@n0roblox-abs.js=anisacintia|template=SEO-Elite-Premium.xml|anisacintia=freerobuxhacks2018julycalendar.blogspot.com|freerobuxhacks2018julycalendar.blogspot.com=direct|ref=direct|tags=roblox-abs.js&@ohttps%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-8812391&@b3:1664129788&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fplay.robuxtip.org%2Findex.html%3Ftrack%3DWyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd&@w
200 OK 52 B URL HTTP/1.1 s4.histats.com/stats/0.php?4275781&@f16&@g0&@h2&@i1&@j1664129787916&@k129154&@l2&@mRoblox%20Robux%20Generator%202022&@n0roblox-abs.js=anisacintia|template=SEO-Elite-Premium.xml|anisacintia=freerobuxhacks2018julycalendar.blogspot.com|freerobuxhacks2018julycalendar.blogspot.com=direct|ref=direct|tags=roblox-abs.js&@ohttps%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-8812391&@b3:1664129788&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fplay.robuxtip.org%2Findex.html%3Ftrack%3DWyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd&@w
IP
File type ASCII text, with no line terminators
Hash 41c226596091f84b790b5822c054435f
cbde1e93b055b1f8c89b1c81d7f314706e93627e
2151dd5f81da260bbe8001fc3e93366832a0736e744b07278656d089088910e7
GET /stats/0.php?4275781&@f16&@g0&@h2&@i1&@j1664129787916&@k129154&@l2&@mRoblox%20Robux%20Generator%202022&@n0roblox-abs.js=anisacintia|template=SEO-Elite-Premium.xml|anisacintia=freerobuxhacks2018julycalendar.blogspot.com|freerobuxhacks2018julycalendar.blogspot.com=direct|ref=direct|tags=roblox-abs.js&@ohttps%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-8812391&@b3:1664129788&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fplay.robuxtip.org%2Findex.html%3Ftrack%3DWyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 18:16:29 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 52
Connection: close
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8161
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 18:16:30 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8161
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 18:16:30 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8161
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 18:16:30 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8161
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 18:16:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lAQOV9_fZ2RFvhRKMtDOeRTWJc-Jo1u-DrtJshcQuCSOUXVbNMjhaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:57:02 GMT
age: 73168
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 714af732a9aa1db2b13ffb62810fd532
358e74de395352a9529ff1c17856daf8900888c5
1d2035cfcd283560ebe8494f9438e52f8d96cd092dd41cb0eb899a3f905c1e05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6199
x-amzn-requestid: d26f22d9-4e9b-4764-8c96-2e1c7ce36340
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--OKHowoAMFbQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7727-7adb7c4925e6e50e13889544;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3_xkH-s3Fzz3CRHux4j3hergFHWBmOFF9vMBCoN1rJrjrCkeSEp0qQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:01:16 GMT
age: 72914
etag: "358e74de395352a9529ff1c17856daf8900888c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d59e1bbd58ff8c5fe5faecb58149601
ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd
c16a2adaeaabbe45801ab5d12ceaeab587b525b4959933f53a9c8dcdb12aec68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7757
x-amzn-requestid: 3092c81c-f703-403a-b718-e18f035f9464
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJQFUWIAMF7Pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-565f665c7e34294079703141;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hc0cpj1kMbAQqcM0ooSgEdS8nPP0m4FJD1bHdY7jN2OENNsJF_gluA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 07:22:33 GMT
age: 39237
etag: "ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F742ed98b-b8fa-4199-984b-51f661ac6e89.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F742ed98b-b8fa-4199-984b-51f661ac6e89.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f93f322ecd0244e7ee4169b200b50df
8db9c71402f2c8ceee047c56ca1a5e41c74f5cf3
2bb739a60a4581e554fb308be7df8b3d7f47e95051e5ef5e0d1d9ed0a0443b68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F742ed98b-b8fa-4199-984b-51f661ac6e89.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4829
x-amzn-requestid: c283df3f-4198-47dd-9b24-634c425bccd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2aA_HgFoAMF_tQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632c0a06-3881d661368a03ae48227b37;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 07:08:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MfIGIFMpATyiwqdf9ngcIqIXe0gtLxt3JlR7pl8tVHyloWd5eKw8HA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 08:02:23 GMT
age: 36847
etag: "8db9c71402f2c8ceee047c56ca1a5e41c74f5cf3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfdacc8edea3c24dad020d7e9c11b3f4
2b6e37596e88b62f288dc8e8c937fd904fae28d5
338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8914
x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EUHqJoAMF7MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kdF6En2vbJhRH1bkYMOuNm5XOIsT1qs3FE281N1SKn1FbyW-oNZsEw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:06 GMT
age: 74364
etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:32 GMT
age: 74338
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
play.robuxtip.org/images/sweetalert2.min.css
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/sweetalert2.min.css
IP
GET /images/sweetalert2.min.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: text/css
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-36a4"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fy9y1%2BKdODkThQJCO2jtZ%2FDSonh23K%2FMKo0NuaFj0T3dhRRwYPGzPFyYFezTvZ1TJdCiFCz1t9S%2FRcbT3%2BG41EY5hSX8Wfts6%2BWEt03Q2E9CeK6s1zt1tyr27D08lKJM2gfRlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d5d740afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/fancyselect.css
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/fancyselect.css
IP
GET /images/fancyselect.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=4253
etag: W/"5d9ca488-109d"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JUbMT1q5ymtecziYqOv8GviY%2FIaPNLVFJbFAy2%2BIHFJypfGEYSAdW%2FvBkbt8xx2DSwf3XtMqO6csJgfcp8otuJHXCB9hVIoKXlpOk5lqMpMBNOV418NU9h8A%2BGYPfROPwIayNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d5d770afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/style.css
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/style.css
IP
GET /images/style.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=50839
etag: W/"5d9ca488-c697"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AgzgDYwan2LcwF9r9FFucYKzgrIsVcy8qxVjFwasBKEPnxiDdsAO3kj3LgjAT3cIFPVb9rkuwzMemRh2hEVrkqkcuB466%2BGJ%2B0WehO7ywkJ6Eb7XV2QHF1OoONFS8IAbCR1HFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d5d8b0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/fancyselect.js
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/fancyselect.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /images/fancyselect.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6778
etag: W/"5d9ca488-1a7a"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h19Nha6eYRRDFjGluaP8FQWF7DRPWOYXIqOZNlFgxpwWuwwuBP2SYcHy7DoQ4t5pfDlIwAbIbyWo5aRAEjC1Ah6I%2FMuD685CjQJTwTSivBpbdxNwccB8TQtIiTTLR9iHJUpM7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d6da00afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/jquery-ui.min.js
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/jquery-ui.min.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /images/jquery-ui.min.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-30da8"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Iu5zJQn3B%2BWEpM4euSM6mMeQDAEKRJZnN%2BInuiWmhKYNMEDO%2B7Ca6ZK2KM0LXyi0dCxy9WdiDEdAfVxt%2FGZFXjWWCWsXbUJljEEuTfREtQ3g8iNaNF8LlyVY91ws4tZ%2Be2ZNxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d6d9f0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/form-scripts.js
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/form-scripts.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /images/form-scripts.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1469
etag: W/"5d9ca488-5bd"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HVjpJuFm2LKo83gQrxasvhYHBn4p%2BGPP3mbKEnR1w7CpHXdc8iADmzyKV2zaDPTxKO0vISq5urLph6VO6Ksg%2BQB3uBY18LVoMlSTipwWMbMqq7ryQstEXFQBlOwlJjxT3puczg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d7db20afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome.min.css
200 OK 0 B URL HTTP/2 netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome.min.css
IP
GET /font-awesome/3.2.1/css/font-awesome.min.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freerobuxhacks2018julycalendar.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:28 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:51 GMT
cdn-cachedat: 08/03/2021 16:46:11
cdn-edgestorageid: 601
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-proxyver: 1.0
cdn-status: 200
cdn-requestid: 0a8c57b841d86b22613591e267b8dfd1
cdn-cache: HIT
cf-cache-status: HIT
age: 9576110
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7505c04aadb0b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/css8a7c8a7c8a7c.css?family=Open+Sans:300,400,700
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/css8a7c8a7c8a7c.css?family=Open+Sans:300,400,700
IP
GET /images/css8a7c8a7c8a7c.css?family=Open+Sans:300,400,700 HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=773
etag: W/"5d9ca488-305"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9hUpJghpK%2FMe3djXEQll7%2BObLNwtRUZqJsCSO9a9G7Hz9pbXTIvVAx0biPdLwBnuxbclMaGDXaxg5qhO5Mp86YTZ0XYwP55837ZB%2F1dsxUk%2BEzNbjz%2BBLunH%2BQZrKn%2B2ZteuKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d4d690afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/scripts.js
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/scripts.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /images/scripts.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=225
etag: W/"5d9ca488-e1"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 240781
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aEeNcnteSK9UkQrPmCVI6cIZaAgMdNJQjk%2Bkj6%2BHuB%2FMssBQq%2BwzeMWZVrWlcsl%2BBjz29oVtF0KmhfDMZsVZ9Lx02%2F7kONcwhinU%2BTiiN0V5ByO4ENMo2pOeJdl%2FKbm5OiYbYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d9def0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/validator.min.js
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/validator.min.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /images/validator.min.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-17a7"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PJuSrZgmeSVpNSDGR%2FLnj%2FwpRG86gYm2IST7sVGi%2FGwxFgI8z6%2F8z2XYflF2hKUAW24J7%2FFobryUwvlvmR%2B5nPrYbssXP7NKEyNky%2B9j6i54YyteFwSo2fgtf4gWMXW88H6pjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d7dab0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/bootstrap.min.css
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/bootstrap.min.css
IP
GET /images/bootstrap.min.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: text/css
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-1d990"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ic38vXlmXkczOs7XGjIhI3L9zR%2F6KZpqEL%2BkIR%2Bzl0FsNkpgNrn%2BmZzc1HQsQDVf8cuJe9fVQQx4GpraDvthNk0h0GOcRjPk%2BCBeDSVzqMh1OPEg03j57MgItrfxSGDxan2wpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d4d710afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/magnific-popup.css
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/magnific-popup.css
IP
GET /images/magnific-popup.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=7946
etag: W/"5d9ca488-1f0a"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JRfFs68DCe1pO6Hk0OIFEHye8mWmczPcS351xwqOWWZ%2FMMJaRzRQZF9BFeCs0ubPZo5kvMFrw6YrKZ%2BqaWbJ4z3lm044TvKVZ3LTfhBeCwQY4IjCp1IJgkHKxju4QWdzsTy8Jw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d5d760afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/custom-css.css
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/custom-css.css
IP
GET /images/custom-css.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1790
etag: W/"5d9ca488-6fe"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wm06HmqeX2zIrpa1F3a9SXB2%2BjZakDQDXwaBXVw%2B8J2JT4eneED4RGrd7Br2JqQEfsCsdE%2FAuvJuWwbM85uxeoNNSgHHddOqQRnsUKd1C4oswi2SYOd8tlPMO3SmZrugXnEnLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d6d900afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/jquery.countto.js
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/jquery.countto.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /images/jquery.countto.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3761
etag: W/"5d9ca488-eb1"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W%2F8sbRwYvVaM9jHf8a8jjjHoO046%2B3gKjP5WmboNjBKsY7CWsYszi8uaCCmKhmcW6CuKSgf%2FjEZMxmoU98wKLEx3On5ZKjywecUEet8lsyvL1XGASIjI%2FJ4uXanqmbA5h57RzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d6da80afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/sticky.js
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/sticky.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /images/sticky.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=20845
etag: W/"5d9ca488-516d"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1HOGneVAMaafRHXQDjIyDWrmF2l%2Fw72lL5EN8wOIDwHvHdGh%2BUAbe64RIDdCxFDeHwuwdqKXl04IMQ7tMJmKMmUg1Kqvf9vRGrua94JtZeIXCzxQYXVEiar1VcprkvVYXj2trQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d7dbb0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/main.js
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/main.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /images/main.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=38451
etag: W/"5d9ca488-9633"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=79zcZVSD4uGC4Z%2FlwmGEKjcC6CTBYG6VNqAR46BIhUyUQq3Pu1korVbMvkyjRNADUu0TO9Hff7TYwdoMhHO%2F40rI4R9Ktq8WD7P6tHtE%2FDIR39gZFVSO4K%2F1ckOVXRjtwDVs8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d9dec0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mtevor.com/cluster-v2/roblox-abs.js
200 OK 0 B URL HTTP/2 mtevor.com/cluster-v2/roblox-abs.js
IP
GET /cluster-v2/roblox-abs.js HTTP/1.1
Host: mtevor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freerobuxhacks2018julycalendar.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-powered-by: PHP/5.6.40
content-type: application/javascript
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 18:16:28 GMT
server: LiteSpeed
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
200 OK 0 B URL HTTP/2 play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
IP
Analyzer Verdict Alert fortinet Phishing
GET /index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freerobuxhacks2018julycalendar.blogspot.com/
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:28 GMT
content-type: text/html
last-modified: Mon, 27 Jun 2022 12:44:26 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bjBCO3nxJ7kjWW78BvsUojocQbBfina5Q3h8lGVwWPONdMBl4im%2BmLh8s0vha8ceXAfW78HwXsbzW6OnesX8nmU9M79r6IKjZqnYTFsN7eXNLRxMwddR0fYnpz0ZU9%2FH6BRgzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04cac9c0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/com.js
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/com.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /images/com.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=17963
etag: W/"5d9ca488-462b"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I0XVosPhJbluIArYRZ9%2BWHn9DkE7RmSHClJIfagfiBvSW2gSrWHTttG57zEpcu1b4lZhwkdUAj%2BKBDaVMvZeGFbP9RAJMiKp7hN6WpPDiwNl%2BbqWHR6EGfoGUDfp99NXSlqy5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d7daf0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/jquery.magnific-popup.min.js
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/jquery.magnific-popup.min.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /images/jquery.magnific-popup.min.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-5297"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z1xb%2Baa%2Bd513OrRuswntYatV6ZavlXv7%2FJ%2FOBRaxala5RMHa3Vr4tB8He4eJL8z5kwCmJ6kQoj6VsQ9bEfA8h%2F0UK%2FmHFUpri8mlIBABxmQChzngw4xnArJwV61ung%2FTblR%2B7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d7db90afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/animate.css
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/animate.css
IP
GET /images/animate.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=68796
etag: W/"5d9ca488-10cbc"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qR1Gy4x09J26NXl8cl5DeP%2B2VoTUwwPYrRD99z9c4gLzBrflRZ%2BJQzZDr8GlZSLgnN18tnyIL4XOU3GPR%2BhRoHpqZyE2WVChUVWK7ZW7VMQQJbRoIP%2Btz2zi60jwU7lSlGINiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d4d720afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/jquery-3.2.1.js
200 OK 0 B URL HTTP/2 play.robuxtip.org/images/jquery-3.2.1.js
IP
Analyzer Verdict Alert fortinet Phishing
GET /images/jquery-3.2.1.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIlNFTy1FbGl0ZS1QcmVtaXVtLnhtbCIsImFuaXNhY2ludGlhIiwiZnJlZXJvYnV4aGFja3MyMDE4anVseWNhbGVuZGFyLmJsb2dzcG90LmNvbSIsImZyZWVyb2J1eGhhY2tzMjAxOGp1bHljYWxlbmRhci5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: username1Cookie=Sam; username2Cookie=Eliano Fallaci; username3Cookie=Ermes; comment1Cookie=this is legit website . :D thanks !; comment2Cookie=thanks for sharing . thank you so much; comment3Cookie=This trick is amazing . thanks a lot dude!!!! WORKS like a charm!!! ..; HstCfa4275781=1664129658762; HstCla4275781=1664129658762; HstCmu4275781=1664129658762; HstPn4275781=1; HstPt4275781=1; HstCnv4275781=1; HstCns4275781=1; c_ref_4275781=https%3A%2F%2Fbestrobloxmobilehacks.blogspot.com%2F; timePosted11Cookie=288896; timePosted22Cookie=43902; timePosted33Cookie=38036
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:29 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=268039
etag: W/"5d9ca488-41707"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727181
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uhZzoinaR%2B6uu47H%2FvIe6QD2bzJds0LVRzXDPpHCddzW70GpJ%2BbUF3WfZJ2w1n2BK7e8mmKgpzjpJETQDfS3lkJ7ejhMvw8Ddt%2B%2Bb%2ByPi9KlVJ%2Fiwd5of%2FjN7pul%2B62WKRdQvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c04d6d9e0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
142.250.74.161
93.184.220.29
104.17.25.14
23.36.76.226
158.69.251.190
46.105.201.240